CVE-2026-44565
Open WebUI · Open WebUI
Open WebUI is affected by a path traversal vulnerability that allows authenticated users to access or manipulate restricted files on the host system.
Executive summary
A path traversal vulnerability in Open WebUI versions prior to 0.6.10 allows authenticated attackers to access sensitive files on the underlying host system, posing a critical security risk.
Vulnerability
This is a path traversal vulnerability (CWE-22) where input is not sufficiently sanitized, allowing an attacker to navigate outside the intended directory. The CVSS vector (PR:L) confirms that an authenticated user can leverage this to impact system integrity and availability.
Business impact
The CVSS score of 8.1 reflects the danger of allowing unauthorized file access. An attacker could potentially read sensitive configuration files, environment variables, or other critical system data, leading to a full compromise of the application server. This constitutes a severe threat to operational security and data privacy.
Remediation
Immediate Action: Patch the Open WebUI installation by upgrading to version 0.6.10 or later.
Proactive Monitoring: Monitor server-side file access logs for directory traversal patterns (e.g., ../ strings) associated with application user accounts.
Compensating Controls: Ensure the application is running with the least-privilege principle, ideally within a containerized environment with a read-only root filesystem to limit the impact of potential directory traversal.
Exploitation status
Public Exploit Available: Unknown.
Analyst recommendation
The severity of path traversal vulnerabilities requires immediate attention to prevent unauthorized file access. Organizations must update their Open WebUI instances to version 0.6.10 without delay, as the existence of a proof-of-concept elevates the likelihood of exploitation by malicious actors.